$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BF1FAEE4C67611EF895EBA70C4F9AE02.roa File: BF1FAEE4C67611EF895EBA70C4F9AE02.roa (raw, json) Hash identifier: qixKBKJuiFSmkNAmQjkArjOBneZuKChmxpWQftvBlVg= Subject key identifier: DB:41:B6:C4:31:D5:3E:A9:2D:E0:38:1D:3E:09:72:51:8E:B7:0D:96 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1C56 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BF1FAEE4C67611EF895EBA70C4F9AE02.roa Signing time: Mon 30 Dec 2024 06:24:39 +0000 ROA not before: Mon 30 Dec 2024 06:24:39 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136308 IP address blocks: 161.248.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Feb 2025 15:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7254 (0x1c56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Dec 30 06:24:39 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67723ca6-0b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fe:f6:c0:38:ac:ce:bb:b0:a6:5f:0f:5b:7e: bc:5b:94:eb:bf:b4:75:91:03:8c:c2:09:30:7d:e8: 0e:c3:f6:ac:b0:45:78:1a:5e:e1:1c:b5:ea:d3:14: 12:be:d6:bd:94:1f:b4:50:37:8a:3d:a3:78:c4:77: c6:1b:f7:fd:90:2f:93:46:17:35:d1:bd:92:bf:55: 0b:a8:b2:18:a6:1c:32:b9:4a:66:71:30:89:05:28: 68:b8:59:69:e8:a6:03:57:6f:d6:9a:83:42:ee:16: 0a:e1:b5:aa:ff:0f:c8:82:e4:71:bf:49:9a:db:7f: 63:b8:63:5f:54:af:e5:7e:d5:25:5d:6b:fe:0c:39: eb:d7:df:36:af:ad:58:a9:c4:8f:4e:c4:cf:3e:87: c8:ea:bb:7c:67:ad:4f:8c:e6:da:02:01:f0:73:ad: 80:e6:6e:d7:52:1c:85:c9:17:2a:83:f9:11:01:da: 7c:39:19:4d:04:37:09:81:1d:d2:f9:9e:8b:4d:a3: 8d:c3:e0:27:9d:3f:8c:bb:cf:70:33:07:4a:c5:3e: 5d:5f:ec:5f:07:41:e9:3d:fb:a7:34:9e:14:1f:3c: 42:bf:11:ec:bb:69:e7:f9:0f:4f:e8:91:8b:4c:28: c1:a2:1c:71:d9:29:a3:65:94:a8:33:ae:ce:ff:b5: 95:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:41:B6:C4:31:D5:3E:A9:2D:E0:38:1D:3E:09:72:51:8E:B7:0D:96 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/BF1FAEE4C67611EF895EBA70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.22.0/23 Signature Algorithm: sha256WithRSAEncryption 57:6a:25:67:0b:78:2e:f7:19:a3:67:b6:84:28:52:c5:71:c1: 56:87:ed:9a:70:25:e9:39:84:08:2e:77:e3:bc:2c:ef:d8:8f: 01:31:00:b9:77:a1:02:59:73:ee:cb:06:db:c8:27:77:9f:f8: 7d:47:9b:08:b6:cd:6d:6d:a0:ba:f4:7c:81:be:a9:79:f8:e8: af:08:97:24:d5:49:19:f3:b1:74:f3:45:76:90:d8:70:6c:38: 50:40:42:d8:7d:02:53:67:20:c3:f0:ed:2a:6e:1f:b4:86:41: 7b:cf:9d:3c:46:09:37:64:1a:f4:43:58:c7:31:22:fe:75:06: 7a:cb:40:7e:76:37:34:01:c4:b4:a1:b1:06:81:31:a3:8d:1c: 2f:dd:f1:be:46:73:9a:a8:58:7f:54:78:d5:c8:07:c4:49:a9: 05:7b:c7:4e:31:bd:97:0b:41:09:96:e2:b1:65:25:38:6e:34: a4:3f:4d:da:6a:87:ba:07:01:30:bc:20:8f:4d:e6:85:d8:84: 27:6f:e2:d4:2d:2b:6a:a6:8a:f3:9a:28:3b:4d:1c:50:79:d4: ce:58:ec:b6:fa:a7:13:2a:48:c8:01:fe:e6:05:57:22:81:95: 0d:82:45:2a:69:15:e8:24:84:be:0b:01:f9:31:d4:55:44:dc: f1:9e:fd:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjQxMjMwMDYyNDM5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcyM2NhNi0wYjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0v72wDiszruwpl8PW368W5Trv7R1kQOMwgkwfegOw/assEV4Gl7hHLXq0xQS vta9lB+0UDeKPaN4xHfGG/f9kC+TRhc10b2Sv1ULqLIYphwyuUpmcTCJBShouFlp 6KYDV2/WmoNC7hYK4bWq/w/IguRxv0ma239juGNfVK/lftUlXWv+DDnr1982r61Y qcSPTsTPPofI6rt8Z61PjObaAgHwc62A5m7XUhyFyRcqg/kRAdp8ORlNBDcJgR3S +Z6LTaONw+AnnT+Mu89wMwdKxT5dX+xfB0HpPfunNJ4UHzxCvxHsu2nn+Q9P6JGL TCjBohxx2SmjZZSoM67O/7WV4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNtBtsQx 1T6pLeA4HT4JclGOtw2WMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQkYxRkFFRTRD Njc2MTFFRjg5NUVCQTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+BYwDQYJKoZIhvcNAQELBQADggEBAFdqJWcLeC73GaNn toQoUsVxwVaH7ZpwJek5hAgud+O8LO/YjwExALl3oQJZc+7LBtvIJ3ef+H1Hmwi2 zW1toLr0fIG+qXn46K8IlyTVSRnzsXTzRXaQ2HBsOFBAQth9AlNnIMPw7SpuH7SG QXvPnTxGCTdkGvRDWMcxIv51BnrLQH52NzQBxLShsQaBMaONHC/d8b5Gc5qoWH9U eNXIB8RJqQV7x04xvZcLQQmW4rFlJThuNKQ/Tdpqh7oHATC8II9N5oXYhCdv4tQt K2qmivOaKDtNHFB51M5Y7Lb6pxMqSMgB/uYFVyKBlQ2CRSppFegkhL4LAfkx1FVE 3PGe/Xc= -----END CERTIFICATE-----Generated at Fri Feb 21 11:16:19 2025 by rpki-client